Vulnerabilities

CVE-2025-3517

by Fred · 01/05/2025

Incorrect privilege assignment in PAM JIT elevation feature in Devolutions Server 2025.1.5.0 and earlier allows a PAM user to elevate a previously configured user configured in a PAM JIT account via failure to update the internal account’s SID when updating the username.

More information : https://devolutions.net/security/advisories/DEVO-2025-0006/

Similar

Tags: Cybersecurity Alert